Regulatory watch, post-quantum standards and CryptOps infrastructure advances. No fabricated facts — verifiable sources only.
NIST finalises ML-KEM (FIPS 203), ML-DSA (FIPS 204) and SLH-DSA (FIPS 205). These three algorithms constitute the first generation of official post-quantum standards.
Source: NIST CSRC →The PG-083 v2 guide integrates recommendations for ML-KEM and ML-DSA, aligned with FIPS 203/204. It recommends a hybrid classical+PQC approach during the transition period.
Source: ANSSI →The DORA regulation (EU 2022/2554) has been fully applicable since 17 January 2025. Inter-site encryption requirements (RTS Art. 6) apply to all financial institutions.
Source: EBA →The NIS2 directive (EU 2022/2555) was due for transposition by 17 October 2024. France has submitted its draft legislation. Critical infrastructure operators are subject to enhanced encryption requirements.
Source: ANSSI →The CryptOps VPN mesh now uses post-quantum key exchange ML-KEM-1024 (256-bit) alongside X448 (224-bit). Six inter-site tunnels are active in production with automatic PQC key rotation.
The entire CryptOps infrastructure uses TLS 1.3 with hybrid key exchange X25519+ML-KEM-768 (X25519MLKEM768). Our domains are among the first in France to deploy PQC in production.
CryptOps has received 4 FPGA AMD cards (sponsored by AMD) and integrated them into the development server. Performance testing and PDI firmware integration are in progress.
The CSPN-NOTE-09 v1.0 compliant pre-security target is complete. It covers all 17 requirements and 4/4 CC-CRY-P-01 axes. CSPN certification is targeted for Q3 2026.